1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
|
#!/bin/sh
set -xe
:
: disable FIPS
:
rm -f /etc/system-fips
/testing/guestbin/fipsoff
:
: Prepare output directory
:
rm -rf /tmp/x509
mkdir /tmp/x509
:
: Copy the scripts and files /tmp/x509
:
cp /testing/x509/nss-pw /tmp/x509
cp /testing/x509/dist_certs.py /tmp/x509
:
: Generate the keys in /tmp/x509
: - much faster than in /testing
: - avoids p9fs write bug
:
/testing/x509/generate.sh /tmp/x509
{ cd /tmp/x509 && ./dist_certs.py ; }
/testing/x509/crl.sh /tmp/x509
/testing/x509/selfsigned.sh /tmp/x509/selfsigned
:
: copy the certs from guest to host in a tar ball to avoid 9fs bug
:
rm -f /testing/x509/kvm-keys.tar
{ cd /tmp/x509 && tar cf kvm-keys.tar */ ; }
cp /tmp/x509/kvm-keys.tar /testing/x509/kvm-keys.tar
|
